**Goldkin** @Goldkin@awoo.space · 2022-12-02T18:38:28Z

Goldkin @Goldkin@awoo.space

PSA, security disclosure: do not use Hive

Some reputable security researchers and SREs on birdsite are sharing that Hive has already had a major security breach and responded to private disclosure with public whataboutism instead of immediately patching:

* https://twitter.com/dynamicsymmetry/status/1598330367374680064

Direct article link: https://zerforschung.org/posts/hive-en/

Avoid, avoid avoid avoid with anything resembling sensitive data. This is about as big a red flag as they come.

Dec 02, 2022, 18:38 · · · ·

**Charlotte Finn** @SkunkyLass@awoo.space · Dec 02, 2022, 18:42

**Charlotte Finn** @SkunkyLass@awoo.space · Dec 02, 2022, 18:42

Dec 02, 2022, 18:42

Charlotte Finn @SkunkyLass@awoo.space

re: PSA, security disclosure: do not use Hive

@Goldkin Yeah, servers have been down for the past couple of days. This might be another Pillowfort situation.

**Kay Ohtie 🎈🌵🐺** @ceralor@blimps.xyz · Dec 02, 2022, 18:49

**Kay Ohtie 🎈🌵🐺** @ceralor@blimps.xyz · Dec 02, 2022, 18:49

Dec 02, 2022, 18:49

Kay Ohtie 🎈🌵🐺 @ceralor@blimps.xyz

re: PSA, security disclosure: do not use Hive

@SkunkyLass @Goldkin shut down like a day or so ago to address the critical problems they were having but I don't trust it being resolved. The dev doesn't have the experience to deliver what they need.

**Charlotte Finn** @SkunkyLass@awoo.space · Dec 02, 2022, 18:55

**Charlotte Finn** @SkunkyLass@awoo.space · Dec 02, 2022, 18:55

Dec 02, 2022, 18:55

Charlotte Finn @SkunkyLass@awoo.space

re: PSA, security disclosure: do not use Hive

@ceralor @Goldkin A shame, really. All of comics Twitter decided to migrate there, and now if I want to network in that space I might have to go back to the hellsite.

Awoo.space is a Mastodon instance where members can rely on a team of moderators to help resolve conflict, and limits federation with other instances using a specific access list to minimize abuse.

While mature content is allowed here, we strongly believe in being able to choose to engage with content on your own terms, so please make sure to put mature and potentially sensitive content behind the CW feature with enough description that people know what it's about.

Before signing up, please read our community guidelines. While it's a very broad swath of topics it covers, please do your best! We believe that as long as you're putting forth genuine effort to limit harm you might cause – even if you haven't read the document – you'll be okay!

Trending now

Resources

Developers

What is Mastodon?

awoo.space

More…